| clickmatters.biz/ | 3.64.163.50 | 301 Moved Permanently | 91 B |
IP3.64.163.50:0
File typeHTML document text\012- HTML document, ASCII text, with no line terminators Hash2ae92d6bf6c7cdfd1feb586433f693e4 b1872f320fc05c40827e87d44574225f1b7ded5e ebf1468b8570a4560187a0bfe84ccfcfe198614cf6b1419096a182208f30924f
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: clickmatters.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty
Date: Sat, 28 Jan 2023 07:06:30 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Location: https://clickmatters.biz/
Cache-Control: no-cache
X-Request-Id: e08cda2e-8c13-45cc-ad89-c27f74c63b80
X-Runtime: 0.030386
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hasha2104f935c638b4767ca5ae0d738ef23 85c6af15af749be0ceeae6de17c36925b750f166 5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3902
Expires: Sat, 28 Jan 2023 08:11:32 GMT
Date: Sat, 28 Jan 2023 07:06:30 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash81dd5c5cc5b3278876cb44dcb520a60f c0511a59e9eccdcdda98717b87c89c5d59974808 41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2638
Expires: Sat, 28 Jan 2023 07:50:28 GMT
Date: Sat, 28 Jan 2023 07:06:30 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashdcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 06:43:03 GMT
content-type: application/json
age: 1407
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash03092d1a1bc7ac91ee342a1a7ab2a562 52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a 03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13037
Expires: Sat, 28 Jan 2023 10:43:47 GMT
Date: Sat, 28 Jan 2023 07:06:30 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: llYl2FdPHuKOBoCy/9UwCZiAqIn05y3z5eFjhsO7D1bdj7yM+N7EmBQJJ7Vh0MqfdxAVqTGKt70=
x-amz-request-id: 4MFQHP45M525Z0XG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 06:20:52 GMT
age: 2738
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 07:06:30 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js | 54.230.111.99 | 200 OK | 6.1 kB |
URL HTTP/2widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js IP54.230.111.99:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (19239) Hash5add60196e5f96a414fb4b9586764e5d 633f471b3c2fcedeef9cad90cb5bf56f5fe55588 5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sat, 28 Jan 2023 04:04:58 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MIUfU6Kj9om5cbYcse_PEvgE-5VJH2lFIBETd3WpzcBlsXT0swW6zw==
age: 10893
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/packs/js/public/product-433a2b17004178b327ef.chunk.js | 54.230.111.35 | 200 OK | 59 kB |
URL HTTP/2cdn3.dan.com/packs/js/public/product-433a2b17004178b327ef.chunk.js IP54.230.111.35:0
File typeASCII text, with very long lines (65536), with no line terminators Hash6641b02e239fd8b8a0121467b5899de9 bf3dc71e6585be0b4d42ac0758d9c82530fbf051 7516d8d9a09af1c78f605336b3889f9c6ec92fa90920571bc80c36fdce70e07c
GET /packs/js/public/product-433a2b17004178b327ef.chunk.js HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 58709
server: openresty
date: Thu, 26 Jan 2023 13:50:48 GMT
last-modified: Thu, 26 Jan 2023 13:48:41 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _kMS1EWGsZ5rhlKfZtF0yez-lEtopsyE1hsgf3Jeb7NAFq5mEhSILg==
age: 148543
X-Firefox-Spdy: h2
|
|
| cdn0.dan.com/packs/js/3-316465271ff922f9ddad.chunk.js | 54.230.111.35 | 200 OK | 56 kB |
URL HTTP/2cdn0.dan.com/packs/js/3-316465271ff922f9ddad.chunk.js IP54.230.111.35:0
File typeASCII text, with very long lines (65450) Hash3b93b400046fb7b947d1e0ee20d954e8 e72e1ba202567eb8bb35a50ae2f8794e601fd24c c86aaae5ded0f8c8efcf131745147459ff4e9458560f7b03e8c381e8040c8671
GET /packs/js/3-316465271ff922f9ddad.chunk.js HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 55649
server: openresty
date: Thu, 12 Jan 2023 03:03:32 GMT
last-modified: Wed, 11 Jan 2023 10:51:54 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2XN3OalyYDN6JBYXcSeJejkrpNuIWWWUu1Yk_IQsIRfwhTy_zavADg==
age: 1396979
X-Firefox-Spdy: h2
|
|
| cdn0.dan.com/assets/public/trustpilot-logo-008df92415278c07b98aab23d543867b3eb67c71c794afef0a84823cd7cc0df2.png | 54.230.111.35 | 200 OK | 4.2 kB |
URL HTTP/2cdn0.dan.com/assets/public/trustpilot-logo-008df92415278c07b98aab23d543867b3eb67c71c794afef0a84823cd7cc0df2.png IP54.230.111.35:0
File typePNG image data, 270 x 66, 8-bit/color RGBA, non-interlaced\012- data Hash18907774a48bbf9c3e0a1cc915a0d870 7c434b9d7e66d861c54aa7805b7abaaa6d18bcf9 008df92415278c07b98aab23d543867b3eb67c71c794afef0a84823cd7cc0df2
GET /assets/public/trustpilot-logo-008df92415278c07b98aab23d543867b3eb67c71c794afef0a84823cd7cc0df2.png HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4185
server: openresty
date: Sat, 21 Jan 2023 01:22:31 GMT
last-modified: Wed, 27 Oct 2021 14:42:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bFrlaI42N4HdgCpK72nRMDL17_UAlFqbxui6VlsPR6S3ylgtpISolg==
age: 625440
X-Firefox-Spdy: h2
|
|
| cdn0.dan.com/packs/js/7-e8b7cbd545dece7083b0.chunk.js | 54.230.111.35 | 200 OK | 65 kB |
URL HTTP/2cdn0.dan.com/packs/js/7-e8b7cbd545dece7083b0.chunk.js IP54.230.111.35:0
File typeASCII text, with very long lines (65536), with no line terminators Hashedee9c896346206d2a9bdf603a8c66eb 981790afe27f0904af54ef62c4259eff485e94d8 8e254c9a8e696415e5a2d854ae78201e34368761c1bc6b40509096ee0a7ff86e
GET /packs/js/7-e8b7cbd545dece7083b0.chunk.js HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 65352
server: openresty
date: Mon, 23 Jan 2023 13:21:36 GMT
last-modified: Mon, 23 Jan 2023 13:20:04 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: B-cNrsqgGbx73-assgQW79MBgP4ewPNOP3tkqm07RWUXGZrUNS6byg==
age: 409495
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/packs/js/runtime~public/product-c65bfa3764bffa252c98.js | 54.230.111.35 | 200 OK | 790 B |
URL HTTP/2cdn2.dan.com/packs/js/runtime~public/product-c65bfa3764bffa252c98.js IP54.230.111.35:0
File typeASCII text, with very long lines (1516) Hashd88ffb17ab99053667006c8883d5e450 4373074213f211ee8abf6644b4e4597158330bbc 5577ef30226735b167e13addab55661ffcb4f5e262f879c4f8fa23ef74266bad
GET /packs/js/runtime~public/product-c65bfa3764bffa252c98.js HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 790
server: openresty
date: Tue, 24 Jan 2023 01:29:37 GMT
last-modified: Mon, 23 Jan 2023 13:20:04 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ztMeiYw5mlHr9eWMyXY5CMvTYqVz0NTVTRc8wKXaDTo4iOGrBwqnqg==
age: 365814
X-Firefox-Spdy: h2
|
|
| cdn1.dan.com/assets/vendor/svg4everybody-f514fdcad5509c1d8608ad8ed6b18dc17777e467f3c0ef19b6b8e44753b288be.js | 54.230.111.35 | 200 OK | 982 B |
URL HTTP/2cdn1.dan.com/assets/vendor/svg4everybody-f514fdcad5509c1d8608ad8ed6b18dc17777e467f3c0ef19b6b8e44753b288be.js IP54.230.111.35:0
File typeASCII text, with very long lines (1896), with no line terminators Hash7e27a1f78cf2901cf631835d1abdd80d 2a470ea7454f0d0da5d3f8c22052f96fdf949eb4 1b1e6270bc0e76e8f70a5024015b12e3833db1d9a3d8252a343b57edd2efdf2f
GET /assets/vendor/svg4everybody-f514fdcad5509c1d8608ad8ed6b18dc17777e467f3c0ef19b6b8e44753b288be.js HTTP/1.1
Host: cdn1.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 982
server: openresty
date: Sun, 25 Dec 2022 05:38:02 GMT
last-modified: Thu, 09 Dec 2021 13:49:19 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aH2bBOCf60ZGMxAsUIS2HncbA7As4xOIf9uphTzKHlzylUJBnEjuwg==
age: 2942909
X-Firefox-Spdy: h2
|
|
| cdn0.dan.com/packs/js/runtime~public/fonts-2fe2dda32aa2d2a2aa67.js | 54.230.111.35 | 200 OK | 786 B |
URL HTTP/2cdn0.dan.com/packs/js/runtime~public/fonts-2fe2dda32aa2d2a2aa67.js IP54.230.111.35:0
File typeASCII text, with very long lines (1516) Hashb4464e4bebd8bf1006970b2339df46bd cf15b2248586735b8fdd81e49f13ec5c9e3193c3 fdaf7679528d5a78e2f74b0bbf1072113cef66f31303156c26333f1de1f58ad8
GET /packs/js/runtime~public/fonts-2fe2dda32aa2d2a2aa67.js HTTP/1.1
Host: cdn0.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 786
server: openresty
date: Mon, 23 Jan 2023 13:21:34 GMT
last-modified: Mon, 23 Jan 2023 13:20:04 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nXGD4a3mPmibh5ezg_5_hT8VpkQUHmRAl5VEIVNSZ4Yy3ra277-LAA==
age: 409497
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/packs/js/public/shared-6223e69b167e7281e4a4.chunk.js | 54.230.111.35 | 200 OK | 479 B |
URL HTTP/2cdn2.dan.com/packs/js/public/shared-6223e69b167e7281e4a4.chunk.js IP54.230.111.35:0
File typeASCII text, with very long lines (1221) Hash99a053ff4ee9b8224e325d4d5c171584 f309e50f887d472aedab1dbe8a8b663f98a6fb96 7e2a785c95c89a3bebc27f54b2e168f650314749663cdb94b1555b634234134a
GET /packs/js/public/shared-6223e69b167e7281e4a4.chunk.js HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 479
server: openresty
date: Mon, 23 Jan 2023 13:21:36 GMT
last-modified: Mon, 23 Jan 2023 13:20:04 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nb5mhMRPnyHZCLHENl_2ICgJHMDK3gvi3S6y9wuvEAJRhZdw4_4ExQ==
age: 409495
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/packs/js/runtime~public/shared-1b01634fd7ca21c7761f.js | 54.230.111.35 | 200 OK | 791 B |
URL HTTP/2cdn2.dan.com/packs/js/runtime~public/shared-1b01634fd7ca21c7761f.js IP54.230.111.35:0
File typeASCII text, with very long lines (1516) Hashd18255e3cc9ecfa4f5c70d603a3c8fed 4de182dd29bc01585447226e2f1c70398e356602 b61a2b54e8af031bd5c36a6b586aba19bbc704cf9a9431dd2c377257c4b64079
GET /packs/js/runtime~public/shared-1b01634fd7ca21c7761f.js HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 791
server: openresty
date: Mon, 23 Jan 2023 13:21:36 GMT
last-modified: Mon, 23 Jan 2023 13:20:04 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 93fKcvE3PywGfVm3kMMlgmsGdvESYksnafFbLDwlcva251noNTVNFA==
age: 409495
X-Firefox-Spdy: h2
|
|
| cdn1.dan.com/packs/js/public/fonts-52bb924d457f5ed62c28.chunk.js | 54.230.111.35 | 200 OK | 427 B |
URL HTTP/2cdn1.dan.com/packs/js/public/fonts-52bb924d457f5ed62c28.chunk.js IP54.230.111.35:0
File typeASCII text, with very long lines (591) Hashdd97c2f3238475d59426923745eecf95 d8bcc92261aae1b45ad7a0961d3be888790b7f47 15bdc8d771b2a7ffea0fa4cda99bfec55054b4fde2dde525ad65657c564c0287
GET /packs/js/public/fonts-52bb924d457f5ed62c28.chunk.js HTTP/1.1
Host: cdn1.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 427
server: openresty
date: Mon, 23 Jan 2023 13:21:34 GMT
last-modified: Mon, 23 Jan 2023 13:20:04 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Yk6e86mnf1IoAEdPcolR9YhQt1YxfzjDHVcRGJXrL3Zb8aRUeJDA0w==
age: 409497
X-Firefox-Spdy: h2
|
|
| cdn1.dan.com/assets/public-7af4f26c11499c346cedb3fa76933cab7b0a61963307dd4db4eb31e6743b7ebc.css | 54.230.111.35 | 200 OK | 70 kB |
URL HTTP/2cdn1.dan.com/assets/public-7af4f26c11499c346cedb3fa76933cab7b0a61963307dd4db4eb31e6743b7ebc.css IP54.230.111.35:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators Hash1625ca46a729631bd020f9be346d1d83 b468379f3e65a05695d98d34f277d1da4a24c429 0d73231c0c041805e3e1e70fd97862ae2b0619c018a7a4cfe2f373f8e1d8273c
GET /assets/public-7af4f26c11499c346cedb3fa76933cab7b0a61963307dd4db4eb31e6743b7ebc.css HTTP/1.1
Host: cdn1.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 69753
server: openresty
date: Tue, 17 Jan 2023 10:04:21 GMT
last-modified: Tue, 17 Jan 2023 09:58:14 GMT
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q5JYiDtCuCle4KHPP0UpSvDb_rguPlJ8sI1PUMICtrNii0VhOsDIqA==
age: 939730
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 06:49:03 GMT
age: 1048
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash36147c185553851c38547798733a9fb2 912ec40237eae2ed558d09103c86c41f87896eca a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash16a7b6a7128312e2f985d30df18c4487 6017bff79ffb525d9c7f9f32b999b74b5dc69602 663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16575
Expires: Sat, 28 Jan 2023 11:42:46 GMT
Date: Sat, 28 Jan 2023 07:06:31 GMT
Connection: keep-alive
|
|
| cdn2.dan.com/assets/logos/Main@2x-0d2a786abd69d2da0f8ab1f105c0da3b8e1baf5c46c13169d6aa5b4c5fea7379.svg | 54.230.111.35 | 200 OK | 12 kB |
URL HTTP/2cdn2.dan.com/assets/logos/Main@2x-0d2a786abd69d2da0f8ab1f105c0da3b8e1baf5c46c13169d6aa5b4c5fea7379.svg IP54.230.111.35:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4396) Hash386fcff0359a238feae3616089163f60 3861370145d1176cdbeb8d44c70638efd49507e7 0d2a786abd69d2da0f8ab1f105c0da3b8e1baf5c46c13169d6aa5b4c5fea7379
GET /assets/logos/Main@2x-0d2a786abd69d2da0f8ab1f105c0da3b8e1baf5c46c13169d6aa5b4c5fea7379.svg HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn1.dan.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 11658
server: openresty
date: Tue, 17 Jan 2023 07:33:07 GMT
last-modified: Mon, 18 Jul 2022 15:41:46 GMT
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Do2tMnje2qcSh-V5LlaxC7ragyFj6sT9GD9aS9guZsqLxoOlLC7CNw==
age: 948804
X-Firefox-Spdy: h2
|
|
| cdn1.dan.com/assets/public/payment_logos-5e4dce7612e404dab090fbee14ac1eddd1c710bfce7d22ee87411662934a7387.png | 54.230.111.35 | 200 OK | 3.2 kB |
URL HTTP/2cdn1.dan.com/assets/public/payment_logos-5e4dce7612e404dab090fbee14ac1eddd1c710bfce7d22ee87411662934a7387.png IP54.230.111.35:0
File typePNG image data, 272 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash1a20ff7a7df04a852f968c5c988dd6fa 260328a70eeb31d942e6bf3afdc3ba0abf9534f7 5e4dce7612e404dab090fbee14ac1eddd1c710bfce7d22ee87411662934a7387
GET /assets/public/payment_logos-5e4dce7612e404dab090fbee14ac1eddd1c710bfce7d22ee87411662934a7387.png HTTP/1.1
Host: cdn1.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn1.dan.com/assets/public-7af4f26c11499c346cedb3fa76933cab7b0a61963307dd4db4eb31e6743b7ebc.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3181
server: openresty
date: Wed, 18 Jan 2023 16:10:51 GMT
last-modified: Thu, 29 Jul 2021 09:32:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tEENV1vPNSh2tXBGafARvUs_rwaQ66RkPOYR6YKDxH9ns-65cgaFnA==
age: 831340
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/assets/GraphikDan-Bold-Web-11f7002d7b0e45f73367bf8e4f5763dc6a7f8f7d6be4f29f26650f13480a5f6a.woff2 | 54.230.111.35 | 200 OK | 39 kB |
URL HTTP/2cdn2.dan.com/assets/GraphikDan-Bold-Web-11f7002d7b0e45f73367bf8e4f5763dc6a7f8f7d6be4f29f26650f13480a5f6a.woff2 IP54.230.111.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 38556, version 1.0\012- data Hash15e0a4e9b6fc2834eec6ccba1973aa45 080a7126b7fb4063ea36c06beca3ebfdc4cc63ef 11f7002d7b0e45f73367bf8e4f5763dc6a7f8f7d6be4f29f26650f13480a5f6a
GET /assets/GraphikDan-Bold-Web-11f7002d7b0e45f73367bf8e4f5763dc6a7f8f7d6be4f29f26650f13480a5f6a.woff2 HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clickmatters.biz
Connection: keep-alive
Referer: https://cdn1.dan.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 38556
server: openresty
date: Mon, 09 Jan 2023 01:20:24 GMT
last-modified: Thu, 29 Jul 2021 09:32:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FXw_mu4cGyyaupLiNYDq3orWXMKFQ90YEbe05ZpipY_WIABRyFXZkw==
age: 1662366
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/assets/GraphikDan-Semibold-Web-560a9afe1c7efc78932e5a841e202476c7af320d0aec9d916cc2f065243cfcfc.woff2 | 54.230.111.35 | 200 OK | 42 kB |
URL HTTP/2cdn3.dan.com/assets/GraphikDan-Semibold-Web-560a9afe1c7efc78932e5a841e202476c7af320d0aec9d916cc2f065243cfcfc.woff2 IP54.230.111.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 42052, version 1.0\012- data Hash7d992431ee5e40d98d9ab99cb5cde954 3e82b380c81c2f83e143e4bb1a4437903c689f05 560a9afe1c7efc78932e5a841e202476c7af320d0aec9d916cc2f065243cfcfc
GET /assets/GraphikDan-Semibold-Web-560a9afe1c7efc78932e5a841e202476c7af320d0aec9d916cc2f065243cfcfc.woff2 HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clickmatters.biz
Connection: keep-alive
Referer: https://cdn1.dan.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 42052
server: openresty
date: Mon, 16 Jan 2023 22:00:24 GMT
last-modified: Thu, 29 Jul 2021 09:32:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZcndPB8NVpNedEkIhnyuz0ZatgCKKzIucSx0iskloOESCrlyRVHc-g==
age: 983167
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/assets/GraphikDan-Medium-Web-cf2e4f4feea57b2fb89e83ed56fc49bc0bf21a4f1fa20afe2e83d745c8890fc3.woff2 | 54.230.111.35 | 200 OK | 36 kB |
URL HTTP/2cdn2.dan.com/assets/GraphikDan-Medium-Web-cf2e4f4feea57b2fb89e83ed56fc49bc0bf21a4f1fa20afe2e83d745c8890fc3.woff2 IP54.230.111.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 36308, version 1.0\012- data Hash47f09a78e5d17d771fb06bc91e174499 b335fe0226d224782678ff7bea49773993e6f052 cf2e4f4feea57b2fb89e83ed56fc49bc0bf21a4f1fa20afe2e83d745c8890fc3
GET /assets/GraphikDan-Medium-Web-cf2e4f4feea57b2fb89e83ed56fc49bc0bf21a4f1fa20afe2e83d745c8890fc3.woff2 HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clickmatters.biz
Connection: keep-alive
Referer: https://cdn1.dan.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 36308
server: openresty
date: Mon, 16 Jan 2023 23:19:30 GMT
last-modified: Thu, 29 Jul 2021 09:32:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zOHUsT9VW8u_UgUmXT9fl-lFEb-wBczFE1w-GGpsXiO6YrTbTqidAQ==
age: 978421
X-Firefox-Spdy: h2
|
|
| cdn1.dan.com/assets/GraphikDan-Regular-Web-1b23e0d886e0602443c35df66f69cf1560710913bf88b512ed9cea147fccf0b6.woff2 | 54.230.111.35 | 200 OK | 37 kB |
URL HTTP/2cdn1.dan.com/assets/GraphikDan-Regular-Web-1b23e0d886e0602443c35df66f69cf1560710913bf88b512ed9cea147fccf0b6.woff2 IP54.230.111.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 37172, version 1.0\012- data Hash6b2f88dd1fc37ad2228bc4b0e12bb011 088cd68a9ce402835ff00e8e2c8ef2ccf4081a3b 1b23e0d886e0602443c35df66f69cf1560710913bf88b512ed9cea147fccf0b6
GET /assets/GraphikDan-Regular-Web-1b23e0d886e0602443c35df66f69cf1560710913bf88b512ed9cea147fccf0b6.woff2 HTTP/1.1
Host: cdn1.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clickmatters.biz
Connection: keep-alive
Referer: https://cdn1.dan.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 37172
server: openresty
date: Sat, 14 Jan 2023 03:50:25 GMT
last-modified: Thu, 29 Jul 2021 09:32:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tiAUgvvcGlYtZAzypW23HhbF1xwRxYhiYGJ0vGrUeZe1YM6uJ7MtCg==
age: 1221366
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-SXRF&l=_gaDataLayer | 172.217.21.168 | 200 OK | 40 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-SXRF&l=_gaDataLayer IP172.217.21.168:0
File typeASCII text, with very long lines (3336) Hash1cf3f552df1d6978bab8978d15dc3cfa f93b70be92aead20945136da743d73ced56c7599 a2620714972ef5d7fe622b8ab7e010aeb3dcbaf2882dfe20b6c67bae331bfa1a
GET /gtm.js?id=GTM-SXRF&l=_gaDataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 07:06:31 GMT
expires: Sat, 28 Jan 2023 07:06:31 GMT
cache-control: private, max-age=900
last-modified: Sat, 28 Jan 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 39615
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash36147c185553851c38547798733a9fb2 912ec40237eae2ed558d09103c86c41f87896eca a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| clickmatters.biz/packs/spritemap.svg | 3.64.163.50 | 200 OK | 60 kB |
URL HTTP/2clickmatters.biz/packs/spritemap.svg IP3.64.163.50:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (60423), with no line terminators Hash70d06b16f5602f37a72554e7be28beea 630c495fc861cdcdffb85a0160dcef93c2578e0e 75fff758e1a3f745402819f4c9941966e0938e0fd475c7d7111c1ed61f39fbd8
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /packs/spritemap.svg HTTP/1.1
Host: clickmatters.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Cookie: bc9bd58fe1b6ef954d6d794db6d30e25e8ff50634d24346cf8006ef422e3c05c6e48b07678e34d08c97ad3f91012c80ac690b50f51fbd49b16e301de58d9c5ca=IIz10o7cVicW5NaM%2BRpAM%2BYQZ6GAuUb4L3%2FA0cCsk1eJ6s6t3Ee2bGRM7nyy2OJsD7AplZeKHvhVRtPdjgMf3tpbcZegm6IubK4qS1v4V4Z4xHnuQZ9%2FsK0a4Iw%2FoCLwuSiAWE6bdL2VHoXXy2YF%2BqQpV5bvsGvDIdpwThnZQ2kZRrcuA5eVpYM%2FeG5UKeAWR3FRMxqTYqyhLUxK6UPYzKp4Acv0cS9qfZ2vVuVhcu9IWWM7oSaUFPXHwF0nzIIYd9tXKoopyPQPIbt0DscILreQhlkim3INwCyi3OxFN58roVv3X5aGuElc0nuhhG6JC%2BFyTw4YGVyppXciaL5kUBqoy4KEOkvBCg%2FYrEVgzFbZBgaYObPqD%2FLGk8z51%2FGmfyLQsHtgP8pvpGq%2Fqq%2F%2BthH16vKm3J2c1aGZIgtY%2BA%2FOx3NXnSLPn9kk0nTKxVWAEwy6w6TI6dyhT1azcewbTw%3D%3D--apggb0XzelmSIjij--F%2FdcDWNpXuqVmTr3B7REdw%3D%3D; time_zone_offset=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 07:06:31 GMT
content-type: image/svg+xml
content-length: 60423
last-modified: Fri, 27 Jan 2023 14:59:54 GMT
X-Firefox-Spdy: h2
|
|
| cdn2.dan.com/assets/icons/touch-icon-ipad-retina-56a8f2519ed554a55e6084d77c1ab7ef3511f8ed5e7877db50a9865621a79290.png | 54.230.111.35 | 200 OK | 3.1 kB |
URL HTTP/2cdn2.dan.com/assets/icons/touch-icon-ipad-retina-56a8f2519ed554a55e6084d77c1ab7ef3511f8ed5e7877db50a9865621a79290.png IP54.230.111.35:0
File typePNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data Hash0c59777f5725af9a1d2d9153da1d7176 bc06fbcbf2170fe049279b7a1b6003eef8d6986a 56a8f2519ed554a55e6084d77c1ab7ef3511f8ed5e7877db50a9865621a79290
GET /assets/icons/touch-icon-ipad-retina-56a8f2519ed554a55e6084d77c1ab7ef3511f8ed5e7877db50a9865621a79290.png HTTP/1.1
Host: cdn2.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3054
server: openresty
date: Tue, 24 Jan 2023 01:27:42 GMT
last-modified: Thu, 29 Jul 2021 09:32:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oZ9uWeRHUZWmqv8intL1w-bSuXGp1Rw9uWXV2uYeuXlMZyoXG3wJCg==
age: 365929
X-Firefox-Spdy: h2
|
|
| cdn3.dan.com/assets/icons/favicon-17cae8213bf0fbeae27b644f0616b74981f348af943f27b73abf8e7b3a557b8f.ico | 54.230.111.35 | 200 OK | 15 kB |
URL HTTP/2cdn3.dan.com/assets/icons/favicon-17cae8213bf0fbeae27b644f0616b74981f348af943f27b73abf8e7b3a557b8f.ico IP54.230.111.35:0
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Hash91b5b75e4f52df43982200873c1feef6 8a01193959229d10a361d4965e305490544c428c 17cae8213bf0fbeae27b644f0616b74981f348af943f27b73abf8e7b3a557b8f
GET /assets/icons/favicon-17cae8213bf0fbeae27b644f0616b74981f348af943f27b73abf8e7b3a557b8f.ico HTTP/1.1
Host: cdn3.dan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 15406
server: openresty
date: Mon, 09 Jan 2023 01:49:20 GMT
last-modified: Thu, 29 Jul 2021 09:32:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e0dfXQRjKfSHGVnJEVfUCkQ9VkBjy-M_rAG3qALWwadibEHNBapKfw==
age: 1660631
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.46 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.46:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 28 Jan 2023 05:45:20 GMT
expires: Sat, 28 Jan 2023 07:45:20 GMT
cache-control: public, max-age=7200
age: 4871
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe7ebbff54ced2c07469b302fc6d44078 f59983c844c398bd37705051ca685b2d07d85726 04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| img6.wsimg.com/wrhs/58af25d2ae01647d78cde71f13a938c1/tcc.min.js | 23.36.79.43 | 200 OK | 29 kB |
URL HTTP/2img6.wsimg.com/wrhs/58af25d2ae01647d78cde71f13a938c1/tcc.min.js IP23.36.79.43:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (65536), with no line terminators Hash2d2168f56975c948b3be73576821bd7d 28aabb3d06a47242ac5889fad13fb928630832e5 94354a566c4c301f72b7c97605823070b702bc9b61570e0a56e292e4d4208dcb
GET /wrhs/58af25d2ae01647d78cde71f13a938c1/tcc.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "58af25d2ae01647d78cde71f13a938c1"
last-modified: Thu, 26 Jan 2023 12:22:25 GMT
vary: Accept-Encoding
x-amz-id-2: CZHjNigoL0kAumToGtrcq2PlrffmAy44mCdcy8b+cAN84jew8h1DcSAsNdqZjC8pS6UCuksnjBI=
x-amz-request-id: WZZ5DH08WECYNNH4
x-amz-server-side-encryption: AES256
x-amz-version-id: MbvrqTsjDl8fFhb_V5pnQhySRkEQg.8c
content-length: 29281
cache-control: max-age=31536000
date: Sat, 28 Jan 2023 07:06:31 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-47793354-3&cid=597866800.1674889593&jid=1728051882&gjid=1204354900&_gid=1806803834.1674889593&_u=YGBAgEABAAAAAEAAI~&z=448110810 | 64.233.165.156 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-47793354-3&cid=597866800.1674889593&jid=1728051882&gjid=1204354900&_gid=1806803834.1674889593&_u=YGBAgEABAAAAAEAAI~&z=448110810 IP64.233.165.156:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-47793354-3&cid=597866800.1674889593&jid=1728051882&gjid=1204354900&_gid=1806803834.1674889593&_u=YGBAgEABAAAAAEAAI~&z=448110810 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Content-Type: text/plain
Content-Length: 0
Origin: https://clickmatters.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://clickmatters.biz
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 28 Jan 2023 07:06:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe7ebbff54ced2c07469b302fc6d44078 f59983c844c398bd37705051ca685b2d07d85726 04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 54.184.253.181 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.184.253.181:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Nw10KCsJFo9zRWTGjU9ExQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pI8L/htWd20KF58Dcq8Tu89yQTk=
|
|
| tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=gpl/main/202212210441&nocookie=1 | 23.38.200.249 | 200 OK | 2 B |
URL HTTP/2tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=gpl/main/202212210441&nocookie=1 IP23.38.200.249:0
File typeASCII text, with no line terminators Hash7bc0ee636b3b83484fc3b9348863bd22 ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610 a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb
GET /utag/tiqapp/utag.v.js?a=gpl/main/202212210441&nocookie=1 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
cache-control: max-age=600
expires: Sat, 28 Jan 2023 07:16:31 GMT
date: Sat, 28 Jan 2023 07:06:31 GMT
X-Firefox-Spdy: h2
|
|
| events.api.secureserver.net/image.aspx?referrer=&trace_id=873cd90938385da1af40237aff99fdb1×tamp=1674889593301&corrid=646739825&vs=visible&rand=1599152531&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=a2f2175a-64a4-5ff0-972d-5dc6184249ed&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none | 104.84.152.186 | 302 Found | 0 B |
URL HTTP/2events.api.secureserver.net/image.aspx?referrer=&trace_id=873cd90938385da1af40237aff99fdb1×tamp=1674889593301&corrid=646739825&vs=visible&rand=1599152531&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=a2f2175a-64a4-5ff0-972d-5dc6184249ed&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none IP104.84.152.186:0 ASN#20940 Akamai International B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /image.aspx?referrer=&trace_id=873cd90938385da1af40237aff99fdb1×tamp=1674889593301&corrid=646739825&vs=visible&rand=1599152531&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=a2f2175a-64a4-5ff0-972d-5dc6184249ed&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Origin: https://clickmatters.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
access-control-allow-origin: https://clickmatters.biz
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
location: https://events.api.secureserver.net/image.aspx?referrer=&trace_id=873cd90938385da1af40237aff99fdb1×tamp=1674889593301&corrid=646739825&vs=visible&rand=1599152531&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=a2f2175a-64a4-5ff0-972d-5dc6184249ed&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none&CookieTest=1
date: Sat, 28 Jan 2023 07:06:32 GMT
set-cookie: traffic=; domain=.secureserver.net; path=/;
X-Firefox-Spdy: h2
|
|
| events.api.secureserver.net/image.aspx?referrer=&trace_id=873cd90938385da1af40237aff99fdb1×tamp=1674889593301&corrid=646739825&vs=visible&rand=1599152531&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=a2f2175a-64a4-5ff0-972d-5dc6184249ed&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none&CookieTest=1 | 104.84.152.186 | 200 OK | 43 B |
URL HTTP/2events.api.secureserver.net/image.aspx?referrer=&trace_id=873cd90938385da1af40237aff99fdb1×tamp=1674889593301&corrid=646739825&vs=visible&rand=1599152531&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=a2f2175a-64a4-5ff0-972d-5dc6184249ed&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none&CookieTest=1 IP104.84.152.186:0 ASN#20940 Akamai International B.V.
File typeGIF image data, version 89a, 1 x 1\012- data Hash325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /image.aspx?referrer=&trace_id=873cd90938385da1af40237aff99fdb1×tamp=1674889593301&corrid=646739825&vs=visible&rand=1599152531&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.dom&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.request&hw=1&browx=1280&browy=939&resx=1280&resy=1024&cdepth=24&hit_id=a2f2175a-64a4-5ff0-972d-5dc6184249ed&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none&CookieTest=1 HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clickmatters.biz
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://clickmatters.biz
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Sat, 28 Jan 2023 07:06:32 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashc083fb68af37d6c700a3fa4eb04a29cb 9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a 3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:06:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash622311873d3819b9911301b09bc2d43c 9f08d648e40479aa12da033da15b80a15017c739 6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:06:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-47793354-3&cid=597866800.1674889593&jid=1728051882&_u=YGBAgEABAAAAAEAAI~&z=12785202 | 142.250.74.67 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-47793354-3&cid=597866800.1674889593&jid=1728051882&_u=YGBAgEABAAAAAEAAI~&z=12785202 IP142.250.74.67:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-47793354-3&cid=597866800.1674889593&jid=1728051882&_u=YGBAgEABAAAAAEAAI~&z=12785202 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 07:06:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| clickmatters.biz/domain_views | 3.64.163.50 | 200 OK | 62 B |
URL HTTP/2clickmatters.biz/domain_views IP3.64.163.50:0
Hash14264ec4f085176d5e5f07235b33195f 087df384002dd5567f7360b90f6422c3a67bc5e8 3120804c6cc0530b0c8ab510bc9a8378ac61100aa04594e9cfa80dc356db6dfa
Analyzer | Verdict | Alert | fortinet | Malware | |
POST /domain_views HTTP/1.1
Host: clickmatters.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 148
Origin: https://clickmatters.biz
Connection: keep-alive
Cookie: bc9bd58fe1b6ef954d6d794db6d30e25e8ff50634d24346cf8006ef422e3c05c6e48b07678e34d08c97ad3f91012c80ac690b50f51fbd49b16e301de58d9c5ca=IIz10o7cVicW5NaM%2BRpAM%2BYQZ6GAuUb4L3%2FA0cCsk1eJ6s6t3Ee2bGRM7nyy2OJsD7AplZeKHvhVRtPdjgMf3tpbcZegm6IubK4qS1v4V4Z4xHnuQZ9%2FsK0a4Iw%2FoCLwuSiAWE6bdL2VHoXXy2YF%2BqQpV5bvsGvDIdpwThnZQ2kZRrcuA5eVpYM%2FeG5UKeAWR3FRMxqTYqyhLUxK6UPYzKp4Acv0cS9qfZ2vVuVhcu9IWWM7oSaUFPXHwF0nzIIYd9tXKoopyPQPIbt0DscILreQhlkim3INwCyi3OxFN58roVv3X5aGuElc0nuhhG6JC%2BFyTw4YGVyppXciaL5kUBqoy4KEOkvBCg%2FYrEVgzFbZBgaYObPqD%2FLGk8z51%2FGmfyLQsHtgP8pvpGq%2Fqq%2F%2BthH16vKm3J2c1aGZIgtY%2BA%2FOx3NXnSLPn9kk0nTKxVWAEwy6w6TI6dyhT1azcewbTw%3D%3D--apggb0XzelmSIjij--F%2FdcDWNpXuqVmTr3B7REdw%3D%3D; time_zone_offset=0; _ga=GA1.2.597866800.1674889593; _gid=GA1.2.1806803834.1674889593; _gat=1; traffic=; _policy=%7B%22restricted_market%22:true,%22tracking_market%22:%22explicit%22%7D; pathway=fc1983bb-3476-5dbb-ac5a-6618d18a9136; fb_sessiontraffic=C_TOUCH=2023-01-28T07:06:33.301Z&pathway=fc1983bb-3476-5dbb-ac5a-6618d18a9136&V_DATE=2023-01-28T07:06:33.298Z&pc=1; visitor=vid=fc1983bb-3476-5dbb-ac5a-6618d18a9136; OPTOUTMULTI=0:1%7Cc3:1%7Cc2:1%7Cc4:1; utag_main=v_id:0185f7330278000136dfb466b15200050001900900918$_sn:1$_ss:1$_st:1674891393465$ses_id:1674889593465%3Bexp-session$_pn:1%3Bexp-session; expBannerSplit=B; _consentBImpression=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 07:06:32 GMT
content-type: text/html
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: no-cache
set-cookie: bc9bd58fe1b6ef954d6d794db6d30e25e8ff50634d24346cf8006ef422e3c05c6e48b07678e34d08c97ad3f91012c80ac690b50f51fbd49b16e301de58d9c5ca=LA8fTAC8dOFDXqO9tC7BcYwkqTH1X0nKXq%2B9W%2BlOEaJZSY2oSCKgbCYhRrmP8EHUZqVgT1o%2F08JaDdrBu3Jo5oRRhWVquEC5YWIewfCqoJK9ZT7R3fTC1Ozm32e59EIMN9Ug%2FIMrW5bIwneechPVFWyA5Q8Wbfa9714eIafO1rzaEo4DVNuTpF516b5bisAFb1XucqL%2Fv2IHOVK3h%2BLkMtwmE%2FbNczHzftl7QjRaV1a8xZm2SFjd2W5iqKi%2B5gjzu%2B13lUAGJTOIE7acXkCMV0AYkbRXZ%2F0%2BK9HAI0%2BMeDOV5WtQRVh37ckkHCi83Opk66lp26HvCgWljrvd2Nf%2FUbhXo6LRvr3cC8nQxuSJxc7GU7TDxLetn5TBD0w0Ju3PzPSX7cr%2B3qUmCM3lqdTXhe4yat5It7Mh4Ppqs4jTvXItKlE3artQ367LN1ptMqhgwyGgGpkooXAHlhCNP0ITjfc%2FnpPcrwMCqfjAH3l1%2BDBSJAYcfiQhVSIG%2FL7dI3l6NHg2BQIcvl7kSsjI--BX5y40kgKUjbXnW7--VHWGunaY0YALvwrkR98ORg%3D%3D; path=/; secure; HttpOnly
x-request-id: 4b1f9cf1-9031-47ab-90af-12cc2cbf8d44
x-runtime: 0.175419
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js | 23.36.79.43 | 200 OK | 7.5 kB |
URL HTTP/2img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js IP23.36.79.43:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (24676) Hashb8a5a228a358454084c34dd1cf431c61 37aa5fe6e083b8147156ca66a1993a7bd74e8a61 06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492
GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Tue, 30 Aug 2022 13:33:22 GMT
vary: Accept-Encoding
x-amz-id-2: Gj864Qjmq93jcEZuHoW24pggVZNYla9J0qIknWJmS1/a54ajkEAEn4NJX1U7ILOl1QvRdYwDDqw=
x-amz-request-id: MN6YE7R2QYB3VNPM
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
cache-control: max-age=31536000
date: Sat, 28 Jan 2023 07:06:32 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashc083fb68af37d6c700a3fa4eb04a29cb 9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a 3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:06:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashab04da9bc46246cc0001464e7f6b5e19 01ce4f7004aec7a24d4545a1e742ab6a1e639b48 22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 07:06:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| events.api.secureserver.net/b.aspx?timestamp=1674889593941&corrid=646739825&referrer=&vs=visible&rand=34537824&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.load&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.log&eventdate=2023-01-28T07%3A06%3A33.942Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1674889592356&connectStart=1674889592290&domComplete=1674889593936&domContentLoadedEventEnd=1674889593053&domContentLoadedEventStart=1674889593050&domInteractive=1674889593041&domLoading=1674889592571&domainLookupEnd=1674889592290&domainLookupStart=1674889592286&fetchStart=1674889592273&navigationStart=1674889591922&requestStart=1674889592357&responseEnd=1674889592559&responseStart=1674889592558&loadEventStart=1674889593936&loadEventEnd=0&transferSize=11039&encodedBodySize=9752&decodedBodySize=29945&navigationType=navigate&fcp=1138&hit_id=6f719fe5-973e-5e56-85fa-b079cb513b5f&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none&trace_id=873cd90938385da1af40237aff99fdb1 | 104.84.152.186 | 200 OK | 43 B |
URL HTTP/2events.api.secureserver.net/b.aspx?timestamp=1674889593941&corrid=646739825&referrer=&vs=visible&rand=34537824&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.load&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.log&eventdate=2023-01-28T07%3A06%3A33.942Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1674889592356&connectStart=1674889592290&domComplete=1674889593936&domContentLoadedEventEnd=1674889593053&domContentLoadedEventStart=1674889593050&domInteractive=1674889593041&domLoading=1674889592571&domainLookupEnd=1674889592290&domainLookupStart=1674889592286&fetchStart=1674889592273&navigationStart=1674889591922&requestStart=1674889592357&responseEnd=1674889592559&responseStart=1674889592558&loadEventStart=1674889593936&loadEventEnd=0&transferSize=11039&encodedBodySize=9752&decodedBodySize=29945&navigationType=navigate&fcp=1138&hit_id=6f719fe5-973e-5e56-85fa-b079cb513b5f&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none&trace_id=873cd90938385da1af40237aff99fdb1 IP104.84.152.186:0 ASN#20940 Akamai International B.V.
File typeGIF image data, version 89a, 1 x 1\012- data Hash325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /b.aspx?timestamp=1674889593941&corrid=646739825&referrer=&vs=visible&rand=34537824&sitename=clickmatters.biz&page=%2F&location=https%3A%2F%2Fclickmatters.biz%2F&agent=false&delegated=false&salessite=false&event=gtm.load&ap=dan-parking&loadSource=gtm&page_level_properties=ap%2CloadSource&event_type=page.log&eventdate=2023-01-28T07%3A06%3A33.942Z&eventtype=pageperf&nav_type=hard&tccin=auto&connectEnd=1674889592356&connectStart=1674889592290&domComplete=1674889593936&domContentLoadedEventEnd=1674889593053&domContentLoadedEventStart=1674889593050&domInteractive=1674889593041&domLoading=1674889592571&domainLookupEnd=1674889592290&domainLookupStart=1674889592286&fetchStart=1674889592273&navigationStart=1674889591922&requestStart=1674889592357&responseEnd=1674889592559&responseStart=1674889592558&loadEventStart=1674889593936&loadEventEnd=0&transferSize=11039&encodedBodySize=9752&decodedBodySize=29945&navigationType=navigate&fcp=1138&hit_id=6f719fe5-973e-5e56-85fa-b079cb513b5f&visitor_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&visit_guid=fc1983bb-3476-5dbb-ac5a-6618d18a9136&page_count=1&has_consent=0&cv=3.36.0&client_name=tcc&same_site=none&trace_id=873cd90938385da1af40237aff99fdb1 HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Origin: https://clickmatters.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://clickmatters.biz
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Sat, 28 Jan 2023 07:06:32 GMT
X-Firefox-Spdy: h2
|
|
| csp.secureserver.net/eventbus | 104.110.14.92 | 200 OK | 0 B |
URL HTTP/1.1csp.secureserver.net/eventbus IP104.110.14.92:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /eventbus HTTP/1.1
Host: csp.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://clickmatters.biz/
Origin: https://clickmatters.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 0
x-amzn-requestid: 73bcf04a-cde9-4952-86c0-a18bf2ca80e4
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: content-type,authorization
x-amz-apigw-id: fcRq6GvMIAMF3sQ=
Access-Control-Allow-Methods: OPTIONS,POST
x-amzn-trace-id: Root=1-63d4c978-02e4f9027e63bc080f11b2f1
x-envoy-upstream-service-time: 91
Expires: Sat, 28 Jan 2023 07:06:32 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 28 Jan 2023 07:06:32 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=86400 ; includeSubDomains ; preload
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12300
Expires: Sat, 28 Jan 2023 10:31:32 GMT
Date: Sat, 28 Jan 2023 07:06:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12300
Expires: Sat, 28 Jan 2023 10:31:32 GMT
Date: Sat, 28 Jan 2023 07:06:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12300
Expires: Sat, 28 Jan 2023 10:31:32 GMT
Date: Sat, 28 Jan 2023 07:06:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12300
Expires: Sat, 28 Jan 2023 10:31:32 GMT
Date: Sat, 28 Jan 2023 07:06:32 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashea24bcba583bd8bd139559448a343e68 b9d37c2b14f890d41983a59f352e8f7caa9c94bb e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K9YWM9eaEc1DQ6wtEEuADnG1U-ahRBXDaiHIAm20dkWMOxPWBlJidw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:46:13 GMT
age: 30020
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb4afa01d2ffe17f8378e4c0b5afd4608 f5c7e2137efa07a207427a6b6fe1df541f85ea25 84fc0c05d25d674b5594b54720017332b86d391f66c7136d76cfce3e884e8e12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13375
x-amzn-requestid: 372fcbe8-85a1-4be2-a006-31fb9289c5e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CxF6BoAMFyGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-4b9860545c612cc416cbe599;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: otEuPlfCL7DeVwGZiGJuMjxjVyGdMwxPWeCz5T_mpXboi-oRujKhBw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 33455
etag: "f5c7e2137efa07a207427a6b6fe1df541f85ea25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash131eb343c5abd61939457d69bd371348 ffb2035cf64fc83f01db5c6f26ffa264b6aac95b 8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:14:23 GMT
age: 31930
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash195316042e7f798eeeb7993fecb3a383 4aeca24ad4702f87feaf9674ea0c1ff6d71826a3 b7e0a61060455241fce844d2c91eca500d409804361063ddb61053cbc9c7b1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13376
x-amzn-requestid: 64d0092e-1f1a-4183-a4a6-805e0bf37d32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-DvHIyoAMF6fA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b1-6387770232ddca74531bce91;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8cRGlncOQ6qYv7qbI1HxTz-qUYJkTVa5V2qJM1C8XM5dmyXFA8qRvA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 33455
etag: "4aeca24ad4702f87feaf9674ea0c1ff6d71826a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7df68b7-44d9-4227-aedc-8e03fd23edd9.jpeg | 34.120.237.76 | 200 OK | 4.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7df68b7-44d9-4227-aedc-8e03fd23edd9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash01d78e0bafdf4cbe227afc503124bc55 e2d21a694342773ccbace4742c4b047e7ce92e1c 3e9027f35134d811a50144a9b70c6de2dc97cbade941a5364717b403bcaf3eb1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7df68b7-44d9-4227-aedc-8e03fd23edd9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4641
x-amzn-requestid: b2e2ba60-21e7-4304-a354-2b49b8162cf2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5FJGoAMFwlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-4b292f801433239340edab33;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: irkZKPRcil7YVMxVJXNkIn18zBSt2JWyxo9ZFMfz6aZer4_lnqG8oA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:38 GMT
etag: "e2d21a694342773ccbace4742c4b047e7ce92e1c"
content-type: image/jpeg
age: 32995
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash57b73886cbbb719eda5f733c018eedfb b84ed40973f8a0d3c10529e34f9466746cfdaf0c 4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7LUa_R8g8Rlv7JJA0_okht-vGe-xBSyZ5TPJTFakAHlncQPZKEdULQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 33455
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| csp.secureserver.net/eventbus | 104.110.14.92 | 202 Accepted | 0 B |
URL HTTP/1.1csp.secureserver.net/eventbus IP104.110.14.92:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /eventbus HTTP/1.1
Host: csp.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Authorization: api-key b18ef4f046435b64a469b32c3c1c20a3
Content-Type: application/json
Content-Length: 948
Origin: https://clickmatters.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 202 Accepted
Content-Type: application/json
Content-Length: 0
x-amzn-requestid: e45c5b07-d3d4-4b6c-89ca-cbcf7b765651
Access-Control-Allow-Origin: *
x-amz-apigw-id: fcRq7HIOIAMFgfg=
x-amzn-trace-id: Root=1-63d4c978-7e5a837c7859f44a154bed08
x-envoy-upstream-service-time: 194
Expires: Sat, 28 Jan 2023 07:06:33 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 28 Jan 2023 07:06:33 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=86400 ; includeSubDomains ; preload
|
|
| clickmatters.biz/ | 3.64.163.50 | 200 OK | 0 B |
IP3.64.163.50:0
Analyzer | Verdict | Alert | fortinet | Malware | |
GET / HTTP/1.1
Host: clickmatters.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: openresty
date: Sat, 28 Jan 2023 07:06:31 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"5f62a3b1f05077ae9dbcb641953740cd"
cache-control: max-age=0, private, must-revalidate
set-cookie: bc9bd58fe1b6ef954d6d794db6d30e25e8ff50634d24346cf8006ef422e3c05c6e48b07678e34d08c97ad3f91012c80ac690b50f51fbd49b16e301de58d9c5ca=IIz10o7cVicW5NaM%2BRpAM%2BYQZ6GAuUb4L3%2FA0cCsk1eJ6s6t3Ee2bGRM7nyy2OJsD7AplZeKHvhVRtPdjgMf3tpbcZegm6IubK4qS1v4V4Z4xHnuQZ9%2FsK0a4Iw%2FoCLwuSiAWE6bdL2VHoXXy2YF%2BqQpV5bvsGvDIdpwThnZQ2kZRrcuA5eVpYM%2FeG5UKeAWR3FRMxqTYqyhLUxK6UPYzKp4Acv0cS9qfZ2vVuVhcu9IWWM7oSaUFPXHwF0nzIIYd9tXKoopyPQPIbt0DscILreQhlkim3INwCyi3OxFN58roVv3X5aGuElc0nuhhG6JC%2BFyTw4YGVyppXciaL5kUBqoy4KEOkvBCg%2FYrEVgzFbZBgaYObPqD%2FLGk8z51%2FGmfyLQsHtgP8pvpGq%2Fqq%2F%2BthH16vKm3J2c1aGZIgtY%2BA%2FOx3NXnSLPn9kk0nTKxVWAEwy6w6TI6dyhT1azcewbTw%3D%3D--apggb0XzelmSIjij--F%2FdcDWNpXuqVmTr3B7REdw%3D%3D; path=/; secure; HttpOnly
x-request-id: 3f3a070a-f2ad-477b-91a3-e56614f9bf64
x-runtime: 0.108850
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| tags.tiqcdn.com/utag/gpl/main/prod/utag.js | 23.38.200.249 | 200 OK | 0 B |
URL HTTP/2tags.tiqcdn.com/utag/gpl/main/prod/utag.js IP23.38.200.249:0
GET /utag/gpl/main/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://clickmatters.biz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "57224d9a9707a839ae4d94757696d852:1671597719.036008"
last-modified: Wed, 21 Dec 2022 04:41:59 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Sat, 28 Jan 2023 07:11:31 GMT
date: Sat, 28 Jan 2023 07:06:31 GMT
X-Firefox-Spdy: h2
|
|